CVE-2022-50745
Published: Dec 24, 2025
Modified: May 11, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: staging: media: tegra-video: fix device_node use after free At probe time this code path is followed: * tegra_csi_init * tegra_csi_channels_alloc * for_each_child_of_node(node, channel) -- iterates over channels * automatically gets 'channel' * tegra_csi_channel_alloc() * saves into chan->of_node a pointer to the channel OF node * automatically gets and puts 'channel' * now the node saved in chan->of_node has refcount 0, can disappear * tegra_csi_channels_init * iterates over channels * tegra_csi_channel_init -- uses chan->of_node After that, chan->of_node keeps storing the node until the device is removed. of_node_get() the node and of_node_put() it during teardown to avoid any risk.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 1ebaeb09830f36c1111b72a95420814225bd761c - < 5451efb2ca30f3c42b9efb8327ce35b62870dbd3affected 1ebaeb09830f36c1111b72a95420814225bd761c - < ce50c612458091d926ccb05d7db11d9f93532db2affected 1ebaeb09830f36c1111b72a95420814225bd761c - < 6512c9498fcb97e7c760e3ef86b2272f2c0f765faffected 1ebaeb09830f36c1111b72a95420814225bd761c - < 0fd003d3c708c80350a815eaf37b8e1114b976cfaffected 1ebaeb09830f36c1111b72a95420814225bd761c - < c4d344163c3a7f90712525f931a6c016bbb35e18 |
Linux | Linux | affected 5.10unaffected 0 - < 5.10unaffected 5.10.163 - <= 5.10.*unaffected 5.15.87 - <= 5.15.*unaffected 6.0.18 - <= 6.0.*+2 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now